cr50_fuzz: Add fuzzer for u2f commandsstabilize-ambassador-14268.43.B-cr50_stab stabilize-14268.67.B-cr50_stab stabilize-14268.52.B-cr50_stab stabilize-14268.51.B-cr50_stab release-R96-14268.B-cr50_stab

Currently there's only one fuzzer for Pinweaver and one for host commands in cr50. Add a fuzzer for the u2f commands (generate, sign, attest) used in the WebAuthn flow to ensure its security. Most regions of the concerning functions are covered except for pure error code returns and unreachable regions (currently auth secret is not used in sign and attest command yet). Rename old cr50_fuzz namings to pinweaver_fuzz, since they only cover Pinweaver commands. BUG=b:172367435 TEST=make buildall -j TEST=make host-u2f_fuzz && \ ./build/host/u2f_fuzz/u2f_fuzz.exe -timeout=10 \ -ignore_ooms=false -ignore_timeouts=false -fork=71; \ llvm-profdata merge -sparse default.profraw -o default.profdata; \ llvm-cov show ./build/host/u2f_fuzz/u2f_fuzz.exe \ -object ./build/host/u2f_fuzz/RO/board/cr50/dcrypto/u2f.o \ --instr-profile default.profdata \ board/cr50/dcrypto/u2f.c common/u2f.c > report Cq-Depend: chromium:3162473 Change-Id: I02b820cf03f7b46ccad7c3bc7b82e73ff45217c6 Signed-off-by: Howard Yang <hcyang@google.com> Reviewed-on: https://chromium-review.googlesource.com/c/chromiumos/platform/ec/+/3162469 Reviewed-by: Andrey Pronin <apronin@chromium.org> Reviewed-by: Vadim Sukhomlinov <sukhomlinov@chromium.org> Reviewed-by: Leo Lai <cylai@google.com>
author: Howard Yang <hcyang@google.com> 2021-09-16 16:06:45 +0800
committer: Commit Bot <commit-bot@chromium.org> 2021-10-07 07:38:13 +0000
commit: 3cac98670745fc5ca82a058fab512567f8444759 (patch)
tree: abd10abc470a197e3c81c9971b9277965fc9b140 /include
parent: af9fd4fba4285b0bd73b96ff6c58e7fcc950c441 (diff)
download: chrome-ec-3cac98670745fc5ca82a058fab512567f8444759.tar.gz
1 files changed, 5 insertions, 0 deletions
diff --git a/include/u2f_cmds.h b/include/u2f_cmds.h
index 00a12af808..0f441e5855 100644
--- a/include/u2f_cmds.h
+++ b/include/u2f_cmds.h
@@ -39,6 +39,11 @@ enum vendor_cmd_rc u2f_generate_cmd(enum vendor_cmd_cc code, void *buf,
 enum vendor_cmd_rc u2f_sign_cmd(enum vendor_cmd_cc code, void *buf,
 				size_t input_size, size_t *response_size);
 
+/**
+ *  U2F_ATTEST command handler.
+ */
+enum vendor_cmd_rc u2f_attest_cmd(enum vendor_cmd_cc code, void *buf,
+				  size_t input_size, size_t *response_size);
 
 /* Maximum size in bytes of G2F attestation certificate. */
 #define G2F_ATTESTATION_CERT_MAX_LEN 315
author	Howard Yang <hcyang@google.com>	2021-09-16 16:06:45 +0800
committer	Commit Bot <commit-bot@chromium.org>	2021-10-07 07:38:13 +0000
commit	3cac98670745fc5ca82a058fab512567f8444759 (patch)
tree	abd10abc470a197e3c81c9971b9277965fc9b140 /include
parent	af9fd4fba4285b0bd73b96ff6c58e7fcc950c441 (diff)
download	chrome-ec-3cac98670745fc5ca82a058fab512567f8444759.tar.gz